INFORMATION ON PERSONAL DATA PROCESSING
1. Purpose and type of data processed
This section provides information regarding the processing of personal data of users who consult the website of the “Metropolitano Urban Center Roma”, pursuant to Article 13 of European Regulation No. 2016/679 on the protection of personal data.
Risorse per Roma SpA announces that the processing of personal data will comply with the provisions of current legislation.
This notice is provided with reference to the processing of personal data resulting from consultation of the “Metropolitano Urban Center Roma” website and not for other websites that may be accessed by the user via external hyperlinks published on the same portal.
2. Data Controller
The DATA CONTROLLER is RISORSE PER ROMA S.P.A, with registered office at Via Benedetto Croce, 32/40, 00142 Rome (RM), VAT and Tax Code 04906911005; Tel +39.0683199100 fax +39.06.83199276; represented by its President, who can be contacted at the following certified email address (PEC): risorseperroma@pec.rpr-spa.it
3. Data Protection Officer
Silvia Sbardella
E-mail: dpo@rpr-spa.it
4. Purpose of processing and legal basis
Risorse per Roma SpA processes personal data in relation to the services offered through the “Metropolitano Urban Center Roma” website, exclusively for purposes falling within its institutional tasks or to comply with legal or regulatory obligations.
5. Browsing data
The IT systems and software procedures used to operate the website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols (e.g., personal data collected through website access logs). Such data are processed for the technical management of the website and for the collection of analytical data on traffic.
6. Cookies and other tracking systems
Cookies are small text fragments that the website sends to the user’s browser, where they are stored and then retransmitted to the site upon the next visit.
This website uses only technical session cookies strictly necessary for the proper functioning of the site.
7. Data voluntarily provided by the user
The optional, explicit, and voluntary sending of emails to the addresses indicated in the various sections of the site and the completion of forms entails the subsequent acquisition of the sender’s address, necessary to respond to requests, for newsletter subscription, as well as any other personal data included in the message.
In this case, the data collected will be processed exclusively to respond to users’ requests, who, where necessary, may be contacted via email, telephone, or other communication systems by an operator appointed by Risorse per Roma SpA.
8. Methods of processing and data retention
In relation to the purposes described, data will be processed using paper, IT, and telematic tools by the Controller, the Data Processor, and/or authorized personnel, in compliance with the aforementioned regulations and in any case using appropriate tools to ensure their security and confidentiality.
The personal data provided may be processed exclusively for purposes related to achieving the objectives for which they are requested. In compliance with the principles of lawfulness, purpose limitation, and data minimization pursuant to Article 5 of EU Regulation 2016/679, subject to the user’s free and explicit consent expressed at the time of registration in the relevant sections, personal data will be retained for the time necessary to achieve the purposes for which they are collected and processed.
9. Recipients or categories of recipients of data
The data provided may be communicated to recipients or other parties appointed as Processors pursuant to Article 28 of EU Regulation 2016/679 and/or to natural persons acting under the authority of the Controller and the Data Processor, in order to fulfill contractual obligations or related purposes.
10. Data transfer abroad
Data are not transferred to third countries outside the European Union.
11. Rights of the data subject
Data subjects have the right to request from Risorse per Roma SpA access to their personal data, rectification or erasure of the same, restriction of processing concerning them, and data portability. They also have the right to request updating of data if incomplete or incorrect, and to object to their processing, subject to the existence of legitimate grounds on the part of the Controller (Articles 15 et seq., EU Regulation No. 2016/679). Requests can be submitted by contacting the Controller (PEC: risorseperroma@pec.rpr-spa.it) or the Data Protection Officer (mail: dpo@rpr-spa.it).
Regulatory framework
• GDPR